Hi all,

I have configured Microsoft (Azure AD) as Identity Provider and now my Keycloak works as Identity Broker. It works well, but I don’t know if there is any trusting logic between Keycloak and Microsoft on tokens coming from Microsoft. I haven’t found precise information about it.

My question is if anybody knows if there is a trusting logic between Microsoft (Azure AD) and Keycloak?
Thanks in advance.

My configuration details:

• I went to Identity Provider menu in the Keycloak admin
• In the “Add providers …” drop down I choosed Microsoft from “Social” section
• Filled up Client ID and Client Seecret
• On Microsoft side I registered my Keycloak application and added to the registration the redirect URI

that is all.

Karoly